|| ||"Justin M. Forbes" <firstname.lastname@example.org>|
|| ||email@example.com, firstname.lastname@example.org|
|| ||rPSA-2006-0096-1 spamassassin|
|| ||Wed, 07 Jun 2006 14:07:50 -0400|
|| ||email@example.com, firstname.lastname@example.org, email@example.com|
rPath Security Advisory: 2006-0096-1
Products: rPath Linux 1
Exposure Level Classification:
Remote Root Deterministic Unauthorized Access
Previous versions of spamassassin have a remote unauthorized access
vulnerability only in a non-default and very uncommon configuration.
It affects only systems where spamd is used with vpopmail virtual
users, via the "-v" or "--vpopmail" switch, and when the "-P" or
"--paranoid" switch has been used. Both switches have to be enabled
for the vulnerability to exist.
to post comments)